General
-
Target
1837a92128a0f061619dcfeeb0173d12_JaffaCakes118
-
Size
635KB
-
Sample
240628-beek8ssdjh
-
MD5
1837a92128a0f061619dcfeeb0173d12
-
SHA1
02139819c4832acf3002e3a6008c7ac077d1c5f3
-
SHA256
026815dff09dcf9f27d77ee3e96b97c404e9ac0c7438883325ea90a2196910db
-
SHA512
46f031ad36e920cd26a36f86856d26f7caec9697aaca4f43f95f08cb335538a48a2dd5544a537dfb8b9aaf868a245e12967afe5965420c4bec67cbf0b84eaeeb
-
SSDEEP
12288:q7e4KW5iis3M4R0FBbFusKSvsa5ETXzMieCZzIV1c2obY74n3NesUR0Y3IrTQZ:Ie4KG+xWFBbFJKSv35EzzZeCpIxoc8nk
Static task
static1
Behavioral task
behavioral1
Sample
1837a92128a0f061619dcfeeb0173d12_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
1837a92128a0f061619dcfeeb0173d12_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
1837a92128a0f061619dcfeeb0173d12_JaffaCakes118
-
Size
635KB
-
MD5
1837a92128a0f061619dcfeeb0173d12
-
SHA1
02139819c4832acf3002e3a6008c7ac077d1c5f3
-
SHA256
026815dff09dcf9f27d77ee3e96b97c404e9ac0c7438883325ea90a2196910db
-
SHA512
46f031ad36e920cd26a36f86856d26f7caec9697aaca4f43f95f08cb335538a48a2dd5544a537dfb8b9aaf868a245e12967afe5965420c4bec67cbf0b84eaeeb
-
SSDEEP
12288:q7e4KW5iis3M4R0FBbFusKSvsa5ETXzMieCZzIV1c2obY74n3NesUR0Y3IrTQZ:Ie4KG+xWFBbFJKSv35EzzZeCpIxoc8nk
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
Suspicious use of SetThreadContext
-